Find Skills - 查找技能安全扫描报告 — 低风险 | ClawSafe

20 /100

Find Skills - 查找技能

用 find_skills.py 在 ClawHub 搜索或列举已装技能，支持 JSON 输出

A legitimate skill discovery tool for ClawHub that uses subprocess to call the clawhub CLI and reads filesystem paths. The install command defaults to dry-run, providing good safety defaults.

技能名称Find Skills - 查找技能

分析耗时35.1s

引擎pi

✓

可以安装

The skill is safe for use. Consider declaring shell:WRITE capability explicitly in SKILL.md if the subprocess behavior is considered shell execution.

安全发现 3 项

严重性	安全发现	位置
低危	subprocess usage not formally declared The code invokes clawhub CLI via subprocess.run() but SKILL.md does not list shell:WRITE in allowed-tools mapping. This is consistent with documented entry points and CLI examples but lacks formal declaration. `p = subprocess.run([exe] + args, capture_output=True, text=True, encoding="utf-8", errors="replace", timeout=timeout, shell=False)` → Add shell:WRITE to declared capabilities if subprocess invocations are considered shell access.	`find_skills.py:153`
低危	Install defaults to dry-run The install command requires --execute flag to actually write files. This is a good safety default that prevents accidental installation. `if not execute: payload = {..., "dry_run": True}` → This is a positive security feature.	`find_skills.py:525`
提示	No external dependencies Uses only Python standard library (json, os, re, shutil, subprocess, urllib, pathlib). No pip install required. `import json, os, re, shutil, subprocess, sys, urllib...` → No action needed - standard library usage is secure.	`find_skills.py:1`

资源类型	声明权限	推断权限	状态	证据
文件系统	`NONE`	`READ`	✓ 一致	find_skills.py:176 - Path.home() / ".openclaw/workspace/skills"
网络访问	`READ`	`READ`	✓ 一致	find_skills.py:285-301 - urllib GET to clawhub.ai/api/v1/skills/
命令执行	`NONE`	`WRITE`	✓ 一致	find_skills.py:153-165 - subprocess.run([exe] + args)

6 项发现

🔗

中危外部 URL 外部 URL

https://www.jisuapi.com/

SKILL.md:77

🔗

中危外部 URL 外部 URL

https://clawhub.ai/org/skill

find_skills.py:23

🔗

中危外部 URL 外部 URL

https://clawhub\.ai/([A-Za-z0-9_.-

find_skills.py:25

🔗

中危外部 URL 外部 URL

https://clawhub.ai/api/v1/skills/

find_skills.py:37

🔗

中危外部 URL 外部 URL

https://clawhub.ai/%s

find_skills.py:307

🔗

中危外部 URL 外部 URL

https://clawhub.ai/

find_skills.py:419

目录结构

2 文件 · 39.2 KB · 1077 行

Python 1f · 991L Markdown 1f · 86L

├─ 🐍 find_skills.py Python 991L · 34.1 KB

└─ 📝 SKILL.md Markdown 86L · 5.1 KB

安全亮点

✓ Install command defaults to dry-run mode for safety

✓ No credential harvesting or environment variable exfiltration

✓ No base64-encoded payloads or obfuscated code

✓ No remote script execution (curl|bash, wget|sh)

✓ No access to sensitive paths (~/.ssh, ~/.aws, .env)

✓ Network requests limited to documented clawhub.ai API endpoints

✓ No eval(), exec(), or dynamic code execution

✓ Uses standard library only - no external dependencies to audit